| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Some rc scripts does not installed if inet6 option is disabled.
Patch provided by Hasso Tepper in PR 38823.
|
|
- better logging for nsd-notify and db creation failures
- nsdc start checks if nsd is already running
- fix loading data from files with relative names when chrootdir ends
with a slash
- fix a case when nsd would return FORMERR for edns queries with version
0 and rdlen larger than 0.
- don't answer nsec3 wildcard information when DO bit is not set
|
|
Fix build on NetBSD-current (with librt).
|
|
- FreeBSD support
- fast file copy code cleanups
|
|
* Changes in Wget 1.11.3
** Downgraded -N with -O to a warning, rather than an error.
* Changes in Wget 1.11.2
** Fixed a problem in authenticating over HTTPS through a proxy.
(Regression in 1.11 over 1.10.2.)
** The combination of -r or -p with -O, which was disallowed in 1.11,
has been downgraded to a warning in 1.11.2. (-O and -N, which was never
meaningful, is still an error.)
** Further improvements to progress bar displays in non-English locales
(too many spaces could be inserted, causing the display to scroll).
** Successive invocations of Wget on FTP URLS, with --no-remove-listing
and --continue, was causing Wget to append, rather than replace,
information in the .listing file, and thereby download the same files
multiple times. This has been fixed in 1.11.2.
** Wget 1.11 no longer allowed ".." to persist at the beginning of URLs,
for improved conformance with RFC 3986. However, this behavior presents
problems for some FTP setups, and so they are now preserved again, for
FTP URLs only.
|
|
|
|
- support $VARBASE
- vpnc.conf was installed in the wrong place, rather than move it use
default.conf instead to mirror what vpnc does natively, and install
with secure permissions (as it contains passwords)
- shell portability
Bump PKGREVISION. Ok'd Jukka/Hubert.
|
|
(heap buffer overflow in client code)
bump PKGREVISION
|
|
|
|
crashes on various architectures and system, such as, for example,
the check_icmp bus error on sparc64.
Changes in 1.4.4:
- check_ntp is now written in C instead of Perl.
- check_disk bugfixes.
- check_udp2, check_udp and check_tcp are now united.
- check_mailq now reports mailq errors better.
- check_snmp now compiles with a sane amount of effort.
Changes in 1.4.5:
- Fixed bug in perl's is_hostname routine.
Changes in 1.4.6:
- check_ping and netutils.c now do less DNS lookups.
- alloca.h related compile fixes.
- check_swap now works on Solaris too.
- check_disk perf data can now be monitored.
- check_procs had a buffer overflow.
- Fixed UNIX socket error handling.
- check_by_ssh now can pass -q and -o to ssh.
- GNUlib sync.
- check_jabber can now return things different from a warning.
Changes in 1.4.7:
- check_procs uses /usr/ucb/ps on Solaris which fixes pst3 problems.
- check_smtp does a non-broken HELO now.
- check_icmp can now have a minimum number of required hosts and also
works if running for a long time on BSDs.
- check_ping timeout reduced.
- Everybody can now execute SUID check plugins unless indicated otherwise
to configure.
Changes in 1.4.8:
- check_disk now has an extra option for regex matching and grouping of FSes.
- check_ntp various fixes.
Changes in 1.4.9:
- New plugin check_cluster (not built by pkgsrc).
- check_by_ssh now has improved stderr/stdout handling options (-E/-S).
- check_ldap, check_radius and check_pgsql compile fixes.
- check_snmp 64-bit counter support.
- Better underflow checking for check_time.
- check_http output is more consistent now.
- check_http HTTP redirect segfault fixes.
- check_tcp doesn't segfault anymore when multiple expect strings are given.
- check_tcp now supports -A to check if all expect strings match.
Changes in 1.4.10:
- check_http redirect buffer overflow vulnerability fixed (was fixed
in pkgsrc before).
- check_http now shuts down HTTP/1.1 keepalive connections cleanly.
- check_ldaps doesn't guess anymore whether to use SSL or STARTTLS.
- check_disk now calls stat on all file systems.
- check_disk now supports the -L flag for local file system checks.
- check_disk now supports -i/-I for ignoring paths/partitions by regex.
- check_disk now supports -A to select all file systems explicitly.
- check_disk now needs to have the -E flag passed before -p or -r/-R.
- check_disk is no longer buggy when case sensitive and insensitive regexes
are mixed.
- check_dhcp now supports -u (unicast) to emulate a relay.
- check_dhcp now lets you specify the MAC address in the request using -m.
- check_dhcp -r and -s options now accept host names.
- check_icmp no longer bus errors on various platforms.
- check_smtp now handles multiple-packet server responses properly.
- Negate command line options are no longer evaluated twice by the shell.
- Negate commands to be run must now be fully qualified.
- Negate can now remap custom states.
- check_radius now supports radius-client-ng (was already in pkgsrc).
- check_by_ssh now supports multiline output.
- check_ntp now honors ntp flags.
Changes in 1.4.10:
- check_ntp returns UNKNOWN rather than WARNING if no jitter is available.
- check_cluster now accept all valid characters in its thresholds.
- check_ntp is now deprecated in favor of check_ntp_peer and check_ntp_time.
- check_disk no longer reports OK if disk usage exceeds 100%.
- check_load handles non-triplet arguments correctly now.
- Nagios::Plugin updated to 0.22.
|
|
Fixed --version flag in dhcrelay
Clarified error message when lease limit exceeded
Log messages when failover peer names mismatch have been improved to point out t
he problem.
Manpage entries in dhcp-options.5 for the 'domain-list' format have been updated
.
The 'min-secs' configuration parameter's log message has been updated to be more
helpful.
Fixes to allow code to compile on Mac OS X Leopard (10.5).
See http://www.isc.org/sw/dhcp/dhcp_rel2.php for all the details
|
|
|
|
Fixed --version flag in dhcrelay
Clarified error message when lease limit exceeded
Log messages when failover peer names mismatch have been improved to point out the problem.
Manpage entries in dhcp-options.5 for the 'domain-list' format have been updated.
The 'min-secs' configuration parameter's log message has been updated to be more helpful.
Fixes to allow code to compile on Mac OS X Leopard (10.5).
See http://www.isc.org/sw/dhcp/dhcp_rel2.php for all the details
|
|
Version 0.4.14 [2008-05-26]
=================================================================
+new !fix ~change -remove | focus: minor bugfixes, improvements
+ Support: sevenload.com (sr #2015)
Contributor: Kai Wasserbach
http://bugs.debian.org/482289
Minor modifications were made to the contributed patch to maintain
backward compatibility with Python 2.4.
+ Scan: GoogleVideo support
--scan now looks for embedded google videos.
+ Scripts: run.py, build.py
These used to be available in the svn repository only.
build.py:
* builds and installs clive to top_srcdir/dist subdir
* wraps "configure" and "make install"
* wraps CFLAGS and LDFLAGS for building newt (bundled)
* takes any of the configure parameters
run.py: runs clive from the top_srcdir/dist subdir
* Wraps PYTHONPATH
* takes any of the clive parameters
Example:
% ./build.py --without-newt
% ./run.py --no-cache URL
! GoogleVideo: "error: extraction url not found" [blocker]
Affected versions: clive 0.4.12, 0.4.13
Low quality video extraction would fail due to page HTML changes.
! File extension
Affected versions: clive < 0.4.14
mp4 file extension was used incorrectly for Metacafe and Guba videos.
! manual page
Typos.
~ code cleanup
Replaced "if .. .find(..) !=/== -1" with "if .. in .."
|
|
|
|
|
|
that brought us NSD.
|
|
Addresses PR pkg/38368 and PR pkg/38371
|
|
many packages used to use ${PAX}. Use the common way of directly calling
pax, it is created as tool after all.
|
|
Includes fix for CVE-2008-1804
[*] New Additions
* Target-Based support to allow rules to use an attribute table
describing services running on various hosts on the network.
Eliminates reliance on port-based rules.
* Support for GRE encapsulation for both IPv4 & IPv6.
* Support for IP over IP tunneling for both IPv4 & IPv6.
* SSL preprocessor to allow ability to not inspect encrypted traffic.
* Ability to read mulitple PCAPs from the command line.
* Support for new CVS rule detection options.
[*] Improvements
* Update to HTTP Inspect to identify overly long HTTP header fields.
* Updates to IPv6 support, including changes to avoid namespace
conflicts for certain Operating systems.
* Updates to address issues seen on various Sparc platforms.
* Stricter enforcement of shared object versions to avoid API
conflicts.
|
|
|
|
|
|
|
|
support.
Patch provided by Hasso Tepper in PR 38621 (already fixed in upstream).
|
|
Version 1.2.
- msdl
- 6th release
- -aN option added (for streams which often cause timeout error)
- resume real-rtsp support
Version 1.1.99.
- msdl
- beta release
- -c (--continue) option added
- --byterange option added
|
|
<http://seclists.org/fulldisclosure/2008/May/0488.html>.
|
|
2008/05/02: version 2.9.5 = tag release-2-9-5
6503: Remove release status when download is finished
2008/03/31
6465: BT: Send correct downloaded value when download starts to tracker
(colchaodemola)
6477: Use $MLDONKEY_DIR/mlnet_tmp instead of /tmp
- This patch fixes problems with hash checking of multifile BT
downloads when /tmp is too small.
- To override $MLDONKEY_DIR/mlnet_tmp use variable $MLDONKEY_TEMP.
This patch has nothing to do with option temp_directory.
6472: Multiuser: Count only files in download queue for user/group statistics
6471: Clean logfile
6470: BT: Use default of max_upload_slots as minimum for BT-max_bt_uploaders
instead of hard-coded value
2008/03/18
6466: Fix option_hook loop when changing max_upload_slots < 3,
caused by patch #6451
2008/03/14
6462: Multiuser: Restrict chown to admin users only
2008/03/11
6458: Fix commit bug when filesystem reports negative values
for maximum filename length
2008/03/07
6451: BT: Implement minimum of 3 (like max_upload_slots)
for option max_bt_uploaders
|
|
Version 0.4.13 [2008-05-20]
=================================================================
+new !fix ~change -remove | focus: minor feature enhancements
+ --scan, -S
Causes clive to scan the fed URLs for identifiable video links.
The found links are then checked and displayed to the user for
selection.
Example:
% clive -S "http://fakesteve.blogspot.com/"
This feature currently scans for Youtube video links only.
Googlevideo support will follow.
! manual page
Cleaned up and fixed some typos.
~ config: url_feed -> feed_url
Renamed config file command "url_feed" to "feed_url".
Version 0.4.12 [2008-05-12]
=================================================================
+new !fix ~change -remove | focus: Minor bugfixes
! VGoogle: OSError: [Errno 2] No such file or directory (bug #11668)
Affected versions: clive 0.4.10, 0.4.11
Extraction would fail for google videos that did not have mp4
link available. See also:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480444
! cache: "OperationalError: no such column: cache_lowq" [blocker]
Affected versions: clive 0.4.10, 0.4.11
Cache upgrade would fail on some configurations for still unknown
reasons. clive will attempt to recreate the cache if the above error
occurs. Any existing cache data will be lost. See also:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=479315
~ configure.ac: module checks
configure no longer checks for modules (urlgrabber, feedparser) when
--without-PACKAGE or --with-PACKAGE=no are being used.
~ Warnings: tweaked
Some warnings have been tweaked.
|
|
|
|
the Perl SNMP module reported in SA30187.
|
|
|
|
|
|
with previous versions, but also to have many new features, such as:
* simple policy language (see "man unlang")
* virtual servers (raddb/sites-available/README)
* IPv6 support
* better proxy support (raddb/proxy.conf)
* More EAP types
* Debugging output should be MUCH easier to understand
* VMPS support
* More modules are marked "stable" (python, etc.)
* SQL configuration has been cleaned up (see raddb/sql/*)
* limited support for HUP
* check configuration and exit (radiusd -C)
* Server core is now event based (simpler, more powerful)
|
|
|
|
to join the multicast-group on BSDs, not only FreeBSD and MacOS X.
Noticed by Greg Kerr via private mail.
Bump PKGREVISION.
|
|
service).
|
|
Patch provided by Steve O'Hara-Smith via private mail.
|
|
|
|
for NetBSD and Linux.
|
|
framework several monthes ago. This resolves various build problems on
Linux.
Should fix PR 37646. Patch from cheusov. Confirmed by joerg.
|
|
check can be abused for implementation specific exploitation: depending on
the use of libbind, this can result in denial of service or even remote
code execution.
|
|
1) An integer underflow error in iso.c when processing RDP requests can
be exploited to cause a heap-based buffer overflow.
2) An input validation error in rdp.c when processing RDP redirect
requests can be exploited to cause a BSS-based buffer overflow.
3) A signedness error within "xrealloc()" in rdesktop.c can be exploited
to cause a heap-based buffer overflow.
|
|
|
|
Packages Collection.
NetAddr (formerly IPAdmin) is a Ruby package for working with
network addresses. Includes: ability to subnet/supernet IPv4 and
IPv6 space, create CIDR-based hierarchical trees, manipulate MAC
addresses, and much more.
|
|
Fix brain dead error in the quoting of unsafe characters.
|
|
as some headers are already included. Define _GNU_SOURCE early...
|
|
- fixes youtube url regex
- misc cosmetic changes
|
|
The VRFY command now accepts 252 as a valid response code. (Bug 5083)
The mailFrom() and rcptTo() methods now support additional arbitrary parameters. (Request 6339)
Upgraded to package.xml version 2 (via package2.xml).
Updated the license to PHP 3.0.1.
Allow auth via STARTTLS if PHP supports it (requires Net_Socket 1.0.7) (Johan Ohrn, johan@oern.mine.nu).
We now use package.xml version 2 exclusively.
Skip unit tests when the configuration file is not available.
Fixing a protocol error when performing DIGEST-MD5 authentication. (Bug 12206)
Add getServiceExtensions (slusarz@curecanti.org, Bug 13763)
|
|
Optimize away some duplicate is_resource() calls.
Better solution for eof() on blocking sockets [#1427].
Add select() implementation [#1428].
Restore support for unix sockets (Bug #2961).
Don't rely on gethostbyname() for error checking (Bug #3100).
Make package.xml safe for PEAR 1.4.0.
Chunk socket writes on Windows by default, or if explicitly specified (Bug #980)
Don't run any $addr with a '/' in it through gethostbyname() (Bug #3372)
Fixing bug #6789: Net_Sock::eof() returns false when socket is already disconnected
Using package.xml v2.0
Fixing request #3327: Method for setting Socket's write buffer size
Add enableCrypto() for calling stream_socket_enable_crypto with PHP 5.1.0+
Revert change for bug #7692 that caused trouble with code already using
output buffering.
|
|
Improve HTML output.
|
